Sonrai Security Releases Industry-First Risk Insights Engine 👉
Learn More
Search Contact Login
  • Why Sonrai
  • Platform
      • Platform OverviewCentralized security for identities, data workloads & infrastructure.
      • CNAPPFind & remediate risk across the entire cloud.
      • CIEM / IdentitySecure identities, access & permissions.
      • Data Access SecurityDiscover, monitor and secure critical data.
      • CSPM / PlatformIdentity & remediate cloud misconfigurations with context.
      • CWPP / WorkloadAgentless scanning & context-aware vulnerability prioritization.
      • CDR / Detection & ResponseDetect anomalous activity & respond with context.
      • INTERACTIVE PRODUCT TOUR
      • Start a Tour
  • Solutions
      • Cloud Environments
      • Amazon Web Services
      • Google Cloud
      • Microsoft Azure
      • Oracle Cloud
      • Use Cases
      • Audit & Compliance
      • Least Privilege
      • Least Access
      • Cloud Misconfiguration
      • Vulnerability Management
      • Executive Reporting
      • User Roles
      • Cloud Teams
      • DevSecOps
      • Security Teams
      • FREE CLOUD IDENTITY DIAGNOSTIC
      • A comprehensive view of your cloud identity risks in 48 hours, with specific next steps to maximize your remediation value.
      • Get Your Diagnostic
  • Learn
      • Resource Library
      • Customer Stories
      • Comparisons
      • Blog
      • Video
      • Access
      • Cloud Pros Talking Shop, No Sales Pitches AllowedGet the 411 on tactics and strategies from security leaders that you can use to meet your own cloud security goals tomorrow.

        Sessions like: – Accelerate Identity Security Maturity in the Cloud – Live Hack: Anatomy of a Cloud Attack – Closing the Security Void left by PAM and IGA in the Cloud
      • Register Now
  • Company
      • About Us
      • Partners
      • Cloud Provider
      • ABOUT US
      • Story & Leadership
      • Careers
      • News
      • INTERACTIVE PRODUCT TOUR
      • Start a Tour
      • PARTNERS
      • Integrations
      • Global System Integrators
      • Solution Providers
      • CLOUD PROVIDER
      • Amazon Web Services
      • Google Cloud
      • Microsoft Azure
      • Oracle Cloud
      • FREE CLOUD IDENTITY DIAGNOSTIC
      • A comprehensive view of your cloud identity risks in 48 hours, with specific next steps to maximize your remediation value.
      • Get Your Diagnostic
Interactive Tour Watch a Demo
  • Why Sonrai
  • Platform
      • Platform OverviewCentralized security for identities, data workloads & infrastructure.
      • CNAPPFind & remediate risk across the entire cloud.
      • CIEM / IdentitySecure identities, access & permissions.
      • Data Access SecurityDiscover, monitor and secure critical data.
      • CSPM / PlatformIdentity & remediate cloud misconfigurations with context.
      • CWPP / WorkloadAgentless scanning & context-aware vulnerability prioritization.
      • CDR / Detection & ResponseDetect anomalous activity & respond with context.
      • INTERACTIVE PRODUCT TOUR
      • Start a Tour
  • Solutions
      • Cloud Environments
      • Amazon Web Services
      • Google Cloud
      • Microsoft Azure
      • Oracle Cloud
      • Use Cases
      • Audit & Compliance
      • Least Privilege
      • Least Access
      • Cloud Misconfiguration
      • Vulnerability Management
      • Executive Reporting
      • User Roles
      • Cloud Teams
      • DevSecOps
      • Security Teams
      • FREE CLOUD IDENTITY DIAGNOSTIC
      • A comprehensive view of your cloud identity risks in 48 hours, with specific next steps to maximize your remediation value.
      • Get Your Diagnostic
  • Learn
      • Resource Library
      • Customer Stories
      • Comparisons
      • Blog
      • Video
      • Access
      • Cloud Pros Talking Shop, No Sales Pitches AllowedGet the 411 on tactics and strategies from security leaders that you can use to meet your own cloud security goals tomorrow.

        Sessions like: – Accelerate Identity Security Maturity in the Cloud – Live Hack: Anatomy of a Cloud Attack – Closing the Security Void left by PAM and IGA in the Cloud
      • Register Now
  • Company
      • About Us
      • Partners
      • Cloud Provider
      • ABOUT US
      • Story & Leadership
      • Careers
      • News
      • INTERACTIVE PRODUCT TOUR
      • Start a Tour
      • PARTNERS
      • Integrations
      • Global System Integrators
      • Solution Providers
      • CLOUD PROVIDER
      • Amazon Web Services
      • Google Cloud
      • Microsoft Azure
      • Oracle Cloud
      • FREE CLOUD IDENTITY DIAGNOSTIC
      • A comprehensive view of your cloud identity risks in 48 hours, with specific next steps to maximize your remediation value.
      • Get Your Diagnostic

Interactive Product Tour

interactive tour Start a Tour Get a Demo
Search Contact Login
Back to News
News

Published : 05.20.2020

VMblog Expert Interview: Getting Ready for CloudBytes Connect with Sonrai Security

By Sonrai Marketing
Skill Level: Learner

View article in it’s entirety on vmblog.com

From vmblog.com: “Identity and data access complexity is a ticking time bomb in your public cloud. Tens of thousands of short compute pieces, thousands of roles, and a dizzying array of interdependencies and inheritances. If you think about it, you have admins that get access to data stores in your environment. Just as the old world, but this is just the beginning in the cloud world. Then, there are service principles, roles, keys. It’s what you use every day to build dynamic workloads. If you’re using a secret store (like HashiCorp Vault) and want to bring your keys, that’s another level of indirection.

It’s not about just people anymore. For your cloud, the vast majority of identities are not people’s identities. A serverless function, a container, a VM. They have rights too. In addition to specific rights associated with computing or users, a group of policies also convey rights. And of course, cloud security services have access rights too. All of this can be controlled, adjusted, or over-written through global restrictions and resource policies like Amazon’s SCP.

Now multiple this by 100 or 1000 and add cloud accounts and subscriptions with Trust Relationships and Permission Inheritance, and you have a ticking time bomb in your cloud. This is why we see data breaches every day.

Sonrai Dig, our enterprise identity and data security platform, de-risks your cloud by finding these holes, helping you fix them, and preventing those problems from occurring in the first place.”

Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on Linkedin
Previous Post Next Post
Sonrai logo FC icon
Get a Demo
  • Twitter
  • Linkedin
  • Solutions
  • Cloud Security Platform
    • CNAPP
    • Workload / CWPP
    • Platform / CSPM
    • Identity / CIEM
    • Data Access Security
    • Data / Cloud DLP
    • Detection & Response / CDR
    • Workflow & Automation
    • Sonrai Identity Graph
  • By Use Case
    • Least Privilege
    • Least Access
    • Cloud Misconfiguration
    • Vulnerability Management
    • Executive Reporting
    • Compliance
  • Cloud Environments
    • AWS
    • Microsoft Azure
    • Google Cloud
  • User Roles
    • Cloud Teams
    • DevSecOps
    • Security Teams
  • Partners
    • Partner Alliances
      • Ecosystem Partners & Integrations
      • Global System Integrators (GSI)
      • Solution Providers (VARS, MSP, MSSP, CSP)
    • Cloud Alliances
      • Microsoft Azure
      • AWS
      • Google Cloud
      • Oracle Cloud
  • Learn
    • Resource Library
    • Blog
    • Events
    • Webinar
    • Comparisons
  • Company
    • Our Story & Leadership
    • Careers
    • News
    • Awards & Recognition
    • Contact Us
  • Twitter
  • Linkedin

© 2023 Sonrai Security. All rights reserved

Sitemap   |   Privacy Policy  |  

Sonrai cloud security platform, products and services are covered by U.S. Patent Nos. 10,728,307 and 11,134,085, together with other domestic and international patents pending. All rights reserved.

Scroll to top